VYPR

Psyprax

by Psyprax

CVEs (3)

  • CVE-2020-10552HigFeb 5, 2021
    risk 0.53cvss 8.1epss 0.01

    An issue was discovered in Psyprax before 3.2.2. The Firebird database is accessible with the default user sysdba and password masterke after installation. This allows any user to access it and read and modify the contents, including passwords. Local database files can be…

  • CVE-2020-10554HigFeb 5, 2021
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in Psyprax beforee 3.2.2. Passwords used to encrypt the data are stored in the database in an obfuscated format, which can be easily reverted. For example, the password AAAAAAAA is stored in the database as MMMMMMMM.

  • CVE-2020-10553MedFeb 5, 2021
    risk 0.36cvss 5.5epss 0.00

    An issue was discovered in Psyprax before 3.2.2. The file %PROGRAMDATA%\Psyprax32\PPScreen.ini contains a hash for the lockscreen (aka screensaver) of the application. If that entry is removed, the lockscreen is no longer displayed and the app is no longer locked. All local…